🔌
Historique des audits
expo-api-routes - 2 audits
Version de l’audit 2
Dernier Risque faibleJan 23, 2026, 07:20 AM
Educational documentation for Expo Router API routes. All static findings are false positives. Detected patterns (code blocks, API examples, environment variables) represent safe documentation demonstrating best practices for server-side API development.
1
Fichiers analysés
369
Lignes analysées
8
résultats
claude
Audité par
Problèmes à risque faible (4)
Documentation Pattern: Code Block Syntax
Static scanner flagged backticks in markdown code blocks as shell command execution. All 49 instances are documentation examples (file paths, code snippets) in SKILL.md, not actual code execution.
Documentation Pattern: API Endpoint Examples
Static scanner flagged fetch calls as network requests. These are legitimate documentation examples showing proper server-side API usage patterns (OpenAI, weather API proxies, local testing).
Documentation Pattern: Import Path References
Static scanner flagged relative paths as path traversal. These are standard TypeScript import statements in code examples for authentication utilities.
Documentation Pattern: Environment Variable Access
Static scanner flagged process.env references as credential access. These are legitimate documentation examples teaching secure secret handling in server-side code.
Facteurs de risque
⚙️ Commandes externes (1)
🌐 Accès réseau (1)
📁 Accès au système de fichiers (1)
🔑 Variables d’environnement (1)
Version de l’audit 1
Risque faibleJan 23, 2026, 07:06 AM
All static findings are FALSE POSITIVES. The skill is educational documentation teaching secure API route development patterns. Detected patterns (environment variable access for secrets, network calls to external APIs, file paths) are legitimate documentation examples demonstrating proper security practices.
1
Fichiers analysés
369
Lignes analysées
2
résultats
claude
Audité par
Aucun problème de sécurité trouvé